GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,587
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,190

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

20,503 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected... Critical Unreviewed

CVE-2024-46888 was published Nov 12, 2024

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected... Critical Unreviewed

CVE-2024-46890 was published Nov 12, 2024

The Relais 2FA plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-10245 was published Nov 12, 2024

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer... Critical Unreviewed

CVE-2024-52533 was published Nov 12, 2024

The SYQ com.downloader.video.fast (aka Master Video Downloader) application through 2.0 for... Critical Unreviewed

CVE-2024-46962 was published Nov 11, 2024

The boa httpd of Trendnet TEW-820AP 1.01.B01 has a stack overflow vulnerability in /boafrm... Critical Unreviewed

CVE-2024-50667 was published Nov 11, 2024

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an... Critical Unreviewed

CVE-2024-36061 was published Nov 11, 2024

A SQL injection vulnerability in /omrs/admin/search.php in PHPGurukul Online Marriage... Critical Unreviewed

CVE-2024-50989 was published Nov 11, 2024

The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing... Critical Unreviewed

CVE-2024-11068 was published Nov 11, 2024

Webopac from Grand Vice info has a SQL Injection vulnerability, allowing unauthenticated remote... Critical Unreviewed

CVE-2024-11020 was published Nov 11, 2024

Webopac from Grand Vice info does not properly validate uploaded file types, allowing... Critical Unreviewed

CVE-2024-11018 was published Nov 11, 2024

Webopac from Grand Vice info has a SQL Injection vulnerability, allowing unauthenticated remote... Critical Unreviewed

CVE-2024-11016 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Made I.T. Forms allows Upload a... Critical Unreviewed

CVE-2024-51791 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Joshua Wolfe The Novel Design... Critical Unreviewed

CVE-2024-51788 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Dang Ngoc Binh Audio Record... Critical Unreviewed

CVE-2024-51792 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Team HB WEBSOL HB AUDIO GALLERY... Critical Unreviewed

CVE-2024-51790 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in UjW0L Image Classify allows... Critical Unreviewed

CVE-2024-51789 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Webful Creations Computer Repair... Critical Unreviewed

CVE-2024-51793 was published Nov 11, 2024

WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c... Critical Unreviewed

CVE-2024-46613 was published Nov 10, 2024

The WP Membership plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2024-10547 was published Nov 9, 2024

The RegistrationMagic – User Registration Plugin with Custom Registration Forms plugin for... Critical Unreviewed

CVE-2024-10508 was published Nov 9, 2024

The Leopard - WordPress Offload Media plugin for WordPress is vulnerable to unauthorized... Critical Unreviewed

CVE-2024-10589 was published Nov 9, 2024

The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed

CVE-2024-10801 was published Nov 9, 2024

The Category Ajax Filter plugin for WordPress is vulnerable to Local File Inclusion in all... Critical Unreviewed

CVE-2024-10871 was published Nov 9, 2024

The WPLMS Learning Management System for WordPress, WordPress LMS theme for WordPress is... Critical Unreviewed

CVE-2024-10470 was published Nov 9, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

20,503 advisories